TOTOLINK N300RH 缓冲区错误漏洞

TOTOLINK N300RH is a long-range wireless router produced by TOTOLINK Corporation. The version TOTOLINK N300RH 3.2.4-B20220812 contains a buffer overflow vulnerability. This vulnerability stems from an operation on the parameterFileName in the setUpgradeFW function of the POST Request Handler...

Delta Electronics ASDA-Soft 安全漏洞

Delta Electronics ASDA-Soft is an AC servo motor from Delta Electronics China. The Delta Electronics ASDA-Soft suffers from a stack buffer overflow vulnerability caused by incorrect boundary checking when parsing an incorrectly formatted .par file, which can be exploited by an attacker to execute...

EUVD-2026-10024

An attacker may access restricted filesystem areas on the device via the CROWN REST interface due to incomplete whitelist enforcement. Certain directories intended for internal testing were not covered by the whitelist and are accessible without authentication. An unauthenticated attacker could...

CVE-2026-2330

An attacker may access restricted filesystem areas on the device via the CROWN REST interface due to incomplete whitelist enforcement. Certain directories intended for internal testing were not covered by the whitelist and are accessible without authentication. An unauthenticated attacker could...

CVE-2026-2330 CVE-2026-2330

An attacker may access restricted filesystem areas on the device via the CROWN REST interface due to incomplete whitelist enforcement. Certain directories intended for internal testing were not covered by the whitelist and are accessible without authentication. An unauthenticated attacker could...

CVE-2026-2330 CVE-2026-2330

An attacker may access restricted filesystem areas on the device via the CROWN REST interface due to incomplete whitelist enforcement. Certain directories intended for internal testing were not covered by the whitelist and are accessible without authentication. An unauthenticated attacker could...

PT-2026-23659

Name of the Vulnerable Software and Affected Versions CROWN versions affected versions not specified Description An attacker may access restricted filesystem areas on the device via the CROWN REST interface due to incomplete whitelist enforcement. Certain directories intended for internal testing...

Dassault Systèmes SOLIDWORKS eDrawings 安全漏洞

Dassault Systèmes SOLIDWORKS eDrawings is a collaboration tool for viewing, sharing, and labeling 2D/3D design files from Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes SOLIDWORKS eDrawings, which stems from a post-release reuse issue during PAR file reading and...

Dassault Systèmes SOLIDWORKS eDrawings 安全漏洞

Dassault Systèmes SOLIDWORKS eDrawings is a collaboration tool for viewing, sharing, and labeling 2D/3D design files from Dassault Systèmes, France. A security vulnerability exists in Dassault Systèmes SOLIDWORKS eDrawings that originates from an out-of-bounds read during the PAR file read proces...

PT-2025-38118

Name of the Vulnerable Software and Affected Versions SOLIDWORKS eDrawings versions prior to SOLIDWORKS Desktop 2025 Description An out-of-bounds read issue exists in the PAR file reading procedure of SOLIDWORKS eDrawings. Successful exploitation of this issue could allow an attacker to execute...

CVE-2025-1499

Summary : CVE-2025-1499 affects IBM InfoSphere Information Server 11.7. The root cause is the explicit storage of credential information for database authentication in a cleartext parameter file, which can be viewed by an authenticated user, leading to potential information disclosure. The issue ...

LoveCards 代码问题漏洞

LoveCards is an open source confession wall program by LoveCards. A code issue vulnerability exists in LoveCards 2.3.2 and earlier versions, which stems from the fact that incorrect manipulation of the parameter file can lead to unlimited uploads, potentially leading to remote attacks...

zzskzy Warehouse Refinement Management System 安全漏洞

zzskzy Warehouse Refinement Management System is a Warehouse Refinement Management System from Zhengzhou Time and Space zzskzy Company in China. A security vulnerability exists in zzskzy Warehouse Refinement Management System version 1.3, which stems from an incorrect manipulation of the paramete...

Effectmatrix Total Video Converter Command Line 安全漏洞

EffectMatrix Total Video Converter Command Line EffectMatrix TVCC is a server-side video encoding and editing software from EffectMatrix. A security vulnerability exists in Effectmatrix Total Video Converter Command Line TVCC version 2.50, which stems from mishandling of the -ff parameter file...

reggie 路径遍历漏洞

reggie is a takeaway website by 1902756969 individual developers. A path traversal vulnerability exists in reggie version 1.0, which stems from an unrestricted upload issue with the parameter file...

myblog 安全漏洞

myblog is a personal blog by the individual developer of ZeroWdd. A security vulnerability exists in version 1.0 of myblog, which stems from the parameter file in the file src/main/java/com/wdd/myblog/controller/admin/uploadController.java that can lead to unrestricted uploads...

studentmanager 代码问题漏洞

studentmanager is a student management system by the individual developers of ZeroWdd. A code issue vulnerability exists in studentmanager version 1.0, which stems from the parameter file in the file src/main/Java/com/wdd/studentmanager/controller/StudentController.java that can lead to...

studentmanager 代码问题漏洞

studentmanager is a student management system by the individual developers of ZeroWdd. A code issue vulnerability exists in studentmanager version 1.0, which stems from the parameter file in the file src/main/Java/com/wdd/studentmanager/controller/TeacherController.java that can lead to...

Datart 代码问题漏洞

Datart is running-elephant's open source generation open platform for data visualization. A code issue exists in Datart version 1.0.0-rc3, where a misuse of the parameter file can lead to deserialization...

Lingdang CRM 代码问题漏洞

Lingdang CRM Lingdang CRM is a customer relationship management system from the Chinese company Lingdang Lingdang. A code issue vulnerability exists in Lingdang CRM version 8.6.4.3 and prior versions, which stems from the parameter file in file/crm/wechatSession/index.php?msgid=1&operation=upload...